Cisco Systems Inc. on Wednesday released software updates to fix a flaw in its uBR10012 router series. The updates were bundled in a package of 12 security advisories.
The release of the uBR10012 patch prompted Symantec Corp. to elevate its measurement of the global threat to Level 2. Symantec's threat levels range from one to four, with four being the most extreme.
According to the Cisco advisory, its uBR10012 devices automatically enable Simple Network Management Protocol (SNMP) read/write access if a device is configured for linecard redundancy. An attacker who exploits the vulnerability can gain complete control of the router.
"Customers who are using Cisco uBR10012 series devices and have configured the device for linecard redundancy are strongly advised to review the following advisory and install updates or apply the recommended workarounds as soon as possible," Symantec said.
Eleven of the 12 security updates released by Cisco on Wednesday address flaws in Cisco's IOS software; the other deals with vulnerabilities in the Cisco Unified Communications manager.